aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | various: Require encryption by default for realKim Alvefur2021-12-256-6/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | These options have been specified (and enabled) in the default config file for a long time. However if unspecified in the config, they were not enabled. Now they are. This may result in a change of behaviour for people using very old config files that lack the require_encryption options. But that's what we want.
| * | mod_invites_register: Default to require encryptionMatthew Wild2022-02-101-1/+1
| | | | | | | | | | | | In line with the Prosody-wide default change for 0.12.
| * | mod_legacyauth: Default to require encryptionMatthew Wild2022-02-101-1/+1
| | |
| * | prosody.cfg.lua.dist: Remove mod_http_filesKim Alvefur2022-02-101-1/+0
| | | | | | | | | | | | | | | | | | | | | Serving web pages outside of specialized modules seems like a rare use case that doesn't warrant a spot in the default config file. Many users seem to have it confused with mod_http_upload, so removing it should help with that.
| * | prosody.cfg.lua.dist: Move Dialback downKim Alvefur2022-02-101-1/+1
| | | | | | | | | | | | Mostly a source of security issues lately
| * | prosody.cfg.lua.dist: Remove https_certificate, this should Just Work nowKim Alvefur2022-02-051-3/+0
| | |
| * | prosody.cfg.lua.dist: Remove mention of deprecated daemonize optionKim Alvefur2022-02-051-1/+1
| | | | | | | | | | | | Just run ./prosody like me!
| * | prosody.cfg.lua.dist: Remove installer_plugin_pathKim Alvefur2022-02-051-4/+0
| | | | | | | | | | | | | | | Most users shouldn't need to add this, and it works out of the box. Not important enough to justify having it in the default config.
| * | prosody.cfg.lua.dist: Add new modulesKim Alvefur2022-02-101-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mod_admin_shell enabled by default because it's awesome! mod_smacks and mod_bookmarks under recommended since they're recommended by the compliance suite XEP-0459 Invites under nice to have and enabled by default to enable a somewhat nice out of the box experience Other new modules mostly under Other mod_external_services left out since it's an advanced thing
| * | prosody.cfg.lua.dist: Add note about 'localhost'Kim Alvefur2021-02-041-0/+3
| | |
* | | prosodyctl: check dns: Allow admin to specify undiscoverable external IPs in ↵Matthew Wild2022-03-021-0/+5
| | | | | | | | | | | | config
* | | prosodyctl: check dns: List discovered addresses for diagnostic purposesMatthew Wild2022-03-021-0/+16
| | | | | | | | | | | | | | | | | | It is very common to get the "unknown address" warning with this command, but people do not always understand it, or know how to debug it. Now we clearly show the addresses that prosodyctl discovered.
* | | util.prosodyctl: check: warn about unreferenced components, suggest disco_itemsMatthew Wild2022-03-021-0/+35
| | |
* | | util.prosodyctl: Warn about enabled public registration in 'check config'Matthew Wild2022-03-021-0/+28
| | |
* | | util.poll: Add support for the poll() APIKim Alvefur2022-02-233-2/+133
| | | | | | | | | | | | Might be better than select(), more portable than epoll.
* | | util.poll: Expose API (epoll or select) usedKim Alvefur2022-02-272-6/+11
| | | | | | | | | | | | Could he handy to know for debugging or decisions
* | | util.poll: Restructure to make adding additional system APIs easierKim Alvefur2022-02-231-11/+23
| | |
* | | make: Split up install targets to allow different subsetKim Alvefur2022-02-132-19/+69
| | | | | | | | | | | | | | | | | | | | | The prosody-trunk nightly packages currently use the Debian dh-lua framework to install core/, net/ and util/ into Lua-versioned directory trees, while plugins and executables should still be installed like before.
* | | core.portmanager: Fix traceback on attempt to get non-existent serviceKim Alvefur2022-02-221-1/+3
| | | | | | | | | | | | | | | If there's no such interface:port then `data` is nil and `data.service` errors.
* | | mod_c2s,mod_s2s: Fix error on shutdown (Thanks Martin)Kim Alvefur2022-02-222-2/+2
| | | | | | | | | | | | | | | Since there are two calls to done() that can happen, if the timing is right (or wrong) both can happen, which previously triggered an error.
* | | util.async: Optionally allow too many 'done' callbacksKim Alvefur2022-02-221-2/+2
| | | | | | | | | | | | | | | Sometimes, like in mod_c2s and mod_s2s during shutdown, all you want is to wait for the first done() and not complicate things.
* | | mod_c2s,mod_s2s: Wrap callback to improve tracebacksKim Alvefur2022-02-222-2/+2
| | | | | | | | | | | | | | | Should make traces point here instead of timer dispatch, making debugging easier
* | | mod_carbons: Allow plugging into decision of whether to carbon-copyKim Alvefur2022-02-211-1/+9
| | | | | | | | | | | | Similar procedure as mod_csi_simple and mod_mam
* | | mod_mam: Fix a commentKim Alvefur2021-12-111-1/+1
| | | | | | | | | | | | This is the noop that gets replaced later
* | | mod_mam: Allow plugging into archive decisionKim Alvefur2021-12-101-4/+13
| | | | | | | | | | | | Similar procedure as mod_csi_simple
* | | core.certmanager: Ensure key exists for fullchainKim Alvefur2022-02-211-1/+1
|/ / | | | | | | | | | | | | | | | | | | Since 5cd075ed4fd3 any file matching "fullchain" would be considered for use. Dehydrated stores fullchain certs in e.g, fullchain-1641171024.pem and a symlink fullchain.pem pointing at the latest one. However the current rule for finding a corresponding private key would try privkey-1641171024.pem in the same directory, which may not exist.
* | mod_admin_shell: Use a table to show help sectionsKim Alvefur2022-02-201-17/+19
| | | | | | | | Because tables make everything better and more readable!
* | CHANGES: Mention graceful shutdownKim Alvefur2022-02-181-0/+3
| |
* | mod_c2s: Ignore unused event payload [luacheck]Kim Alvefur2022-02-181-1/+1
| |
* | mod_c2s,mod_s2s: Wait for sessions to close before proceeding with shutdown ↵Kim Alvefur2022-02-172-2/+32
| | | | | | | | | | | | | | | | | | | | steps Ensures unavailable presence and other outgoing stanzas are sent. Waiting for c2s sessions to close first before proceeding to disable and close s2s ensures that unavailable presence can go out, even if it requires dialback to complete first.
* | mod_c2s: Close ports in a separate, earlier event from closing sessionsKim Alvefur2022-02-181-0/+2
| | | | | | | | | | Lets other things step in and do things while c2s ports are closed, e.g. mod_smacks, or other modules with port handlers that forward to c2s.
* | mod_s2s: Disable creation of new outgoing connections during shutdownKim Alvefur2022-02-111-0/+7
| |
* | mod_c2s,mod_s2s: Disable and close port listeners before closing sessionsKim Alvefur2022-02-113-0/+15
| | | | | | | | This ensures no new clients can start connecting during shutdown
* | mod_posix: Run signal handlers in the startup threadKim Alvefur2021-10-061-7/+13
| |
* | prosody: Expose main thread on the 'prosody' globalKim Alvefur2021-10-062-0/+5
| | | | | | | | To allow running things in it.
* | prosody: Run shutdown procedure in async threadKim Alvefur2019-01-011-1/+1
| |
* | prosody: Move last cleanup and shutdown code into util.startupKim Alvefur2019-01-012-13/+17
| |
* | mod_admin_shell: Squeeze some characters out of the Certificate columnKim Alvefur2022-02-171-2/+2
| | | | | | | | The more compact these are, the better
* | prosodyctl: Restore 'list --outdated'Kim Alvefur2022-02-171-0/+4
| | | | | | | | | | Parsing --flags puts it into 'opts', so --outdated wasn't passed to luarocks, breaking that functionality
* | mod_admin_shell: Fix description of muc:room() (thanks Link Mauve)Kim Alvefur2022-02-151-1/+1
| | | | | | | | | | But then this is the internal API which is weird and unfriendly to expose externally. Lots of methods to wrap tho ... one day.
* | mod_turn_external: Fix type of config option (thanks mirux)Kim Alvefur2022-02-151-1/+1
| | | | | | | | | | | | There was a separate boolean option to enable TLS before, but it was merged with the port number option and it seems the typed API interface got confused.
* | util.dns: Remove compat for pre-0.11 lack of inet_ntop bindingKim Alvefur2022-02-151-32/+3
| | | | | | | | The inet_ntop binding was added in 8b612ec00e4a and included in 0.11.0
* | util.dns: Replace base16 implementation with util.hexKim Alvefur2022-02-151-10/+1
| | | | | | | | Less code!
* | core.certmanager: Relax certificate filename check #1713Kim Alvefur2022-02-141-8/+2
| | | | | | | | | | After a survey of ACME clients it seems *.crt and *fullchain* should work for the majority. The rest get to manually copy their files.
* | util.dependencies: Refer to 'apt' instead of 'apt-get'Kim Alvefur2022-02-132-7/+7
| | | | | | | | | | The more modern and user friendly frontend, should be in every supported version of Debian and Ubuntu by now
* | mod_invites_register: Load mod_register_ibr in invite only modeKim Alvefur2022-02-101-0/+4
| | | | | | | | | | This ensures that registration actually works even if allow_registration is not enabled.
* | mod_invites_register: Replace COMPAT hackKim Alvefur2022-02-101-1/+1
| | | | | | | | | | This hack is not needed since a9c975a0f113 so can be removed when included with Prosody.
* | mod_turn_external: Add option to enable TURN over TLSKim Alvefur2022-02-101-2/+6
| | | | | | | | | | | | Usually on port 443 to avoid restrictive firewalls. Thanks to Holger for discussion
* | mod_turn_external: Simplify configurationKim Alvefur2022-02-101-2/+9
| | | | | | | | | | Much harder to get boolean options wrong than accidentally adding something unrecognised to a Set.
* | mod_admin_shell: Track connected events instead of createdKim Alvefur2022-02-061-3/+3
| | | | | | | | | | | | | | | | The connection events are more appropriate here, where the s2s-created events happens a bit later or earlier in a sessions lifetime depending on its direction and for outgoing connections isn't actually the creation time (which happens immediately after pressing enter, so not very interesting), but rather closer to the connection time.